3 hours ago
3
Netgear
Netgear has released a security advisory addressing two critical vulnerabilities affecting Nighthawk Pro Gaming routers and certain Wi-Fi 6 access points. The company strongly recommends that users update their devices’ firmware promptly to mitigate potential risks.
The first vulnerability, identified as PSV-2023-0039, is a Remote Code Execution (RCE) flaw. This security issue allows attackers to execute arbitrary code on affected devices remotely, potentially leading to unauthorized control over the router. The second vulnerability, PSV-2021-0017, is an authentication bypass flaw, which enables attackers to circumvent authentication mechanisms and gain unauthorized access to the device’s management interface.
The affected models include Nighthawk Pro Gaming Routers such as the XR1000, XR1000v2, and XR500, as well as Wi-Fi 6 Access Points like the WAX206, WAX220, and WAX214v2.
The company has released firmware updates to address these vulnerabilities. If you do own any of the above mentioned products, it is strongly advised to download and install the latest firmware versions for your respective devices. Detailed instructions on updating firmware can be found on Netgear’s official support page.
Routers are prime targets for cyberattacks because they serve as the main gateway between the internet and home or business networks. They are always online, making them a persistent attack surface for hackers. Many routers ship with weak default security settings, including easily guessable credentials and outdated firmware, which users often neglect to update. Attackers exploit these vulnerabilities to gain control over the router, using it to monitor internet traffic, launch further attacks, or redirect users to malicious websites. Additionally, unsecured remote access features can allow hackers to take over routers from anywhere in the world.
Once compromised, routers can be used for various malicious activities, including botnet recruitment, DNS hijacking, and man-in-the-middle attacks. Hackers can exploit them to intercept sensitive data, gain access to IoT devices, and even use them as launch points for large-scale cyberattacks like DDoS attacks.
Since many users are unaware of router security risks, these devices often remain unpatched and vulnerable for extended periods. To reduce the risk, users should regularly update firmware, change default credentials, disable unnecessary remote management features, and enable strong encryption to secure their networks.
Kunal Khullar is a computing writer at Digital Trends who contributes to various topics, including CPUs, GPUs, monitors, and…
Microsoft stopped the largest DDoS attack ever reported
Distributed Denial-of-Service (DDoS) attacks have become more common, and Microsoft recently published a blog post looking into the trends for such attacks on its own servers. In that post, the company says that, at one point, it stopped one of the largest-ever-recorded DDoS attacks on a Microsoft Azure server in Asia.
According to Microsoft's data, in November, an unnamed Azure customer in Asia was targeted with a DDoS attack with a throughput of 3.47 Tbps and a packet rate of 340 million packets per second (pps.) The attack came from 10,000 sources from multiple countries across the globe, including China, South Korea, Russia, Iran, and Taiwan. The attack itself lasted 15 minutes. Yet it is not the first one of such scale, as there were two additional attacks, one of 3.25 Tbps and another of 2.55 Tbps in December in Asia.
Read more
Cloudflare reports a massive 175% increase in DDoS attacks
Cloudflare, a web infrastructure and security company, has just released a report titled "DDoS Attack Trends for Q4 2021." According to Cloudflare, 2021 has been a particularly bad year in terms of DDoS attacks.
Ransom distributed denial of service (DDoS) attacks increased by over 175 percent quarter over quarter, highlighting the large scale of the problem described by Cloudflare.
Read more
Netgear’s new Nighthawk gaming router brings Wi-Fi 6E speeds to the masses
If you love the design -- and performance -- of Netgear's tried and trusted wing-shaped Nighthawk routers, the latest Nighthawk RAXE300 should catch your eye. The RAXE300 is a Wi-Fi 6E router that was announced ahead of CES this year, and this new, more affordable model joins the much beloved and more premium RAXE500, which is one of our favorite gaming routers on the market today.
Like the premium RAXE500, the RAXE300's adoption of Wi-Fi 6E should lead to better performance with more spectrum, more high bandwidth channels, and less interference with reduced latency, according to Netgear.
Read more
)
English (US) ·